347 matches found
Fedora: Security Advisory (FEDORA-2024-d408b654d6)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 39 Update: matrix-synapse-1.105.1-1.fc39
Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...
Fedora 39 : matrix-synapse / rust-pythonize (2024-d408b654d6)
The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-d408b654d6 advisory. Update matrix-synapse to v1.105.1 CVE-2024-31208 ---- Update to v1.105.0 Tenable has extracted the preceding description block directly from the Fedora...
Fedora 38 : matrix-synapse / rust-pythonize (2024-7be0693731)
The remote Fedora 38 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-7be0693731 advisory. Update matrix-synapse to v1.105.1 CVE-2024-31208 ---- Update to v1.105.0 Tenable has extracted the preceding description block directly from the Fedora...
Fedora 40 : matrix-synapse / rust-pythonize (2024-3ff83cb806)
The remote Fedora 40 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-3ff83cb806 advisory. Update matrix-synapse to v1.105.1 CVE-2024-31208 ---- Update to v1.105.0 Tenable has extracted the preceding description block directly from the Fedora...
FreeBSD : py-matrix-synapse -- weakness in auth chain indexing allows DoS (bdfa6c04-027a-11ef-9c21-901b0e9408dc)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the bdfa6c04-027a-11ef-9c21-901b0e9408dc advisory. - Synapse is an open-source Matrix homeserver. A remote Matrix user with malicious intent, sharing a ro...
raiden (>=0.100.2 <=0.100.3rc1) potentially affected by CVE-2024-31208 via matrix-synapse (=0.33.9)
matrix-synapse PYPI version =0.33.9 is affected by a known vulnerability. The following packages have a transitive dependency on matrix-synapse and may be impacted: - raiden =0.100.2, =0.100.3rc1 Source cves: CVE-2024-31208 Source advisory: OSV:GHSA-3H7Q-RFH9-XM4V...
raiden (>=0.100.2 <=0.100.3rc1) potentially affected by CVE-2024-31208 via matrix-synapse (=0.33.9)
matrix-synapse PYPI version =0.33.9 is affected by a known vulnerability. The following packages have a transitive dependency on matrix-synapse and may be impacted: - raiden =0.100.2, =0.100.3rc1 Source cves: CVE-2024-31208 Source advisory: OSV:PYSEC-2024-50...
py-matrix-synapse -- weakness in auth chain indexing allows DoS
Matrix developers report: Weakness in auth chain indexing allows DoS from remote room members through disk fill and high CPU usage. High severity...
[SECURITY] Fedora 38 Update: matrix-synapse-1.95.1-1.fc38
Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...
[SECURITY] Fedora 39 Update: matrix-synapse-1.95.1-1.fc39
Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...
Fedora: Security Advisory for matrix-synapse (FEDORA-2023-f8d216faed)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2023-957972e77c)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 38 : matrix-synapse (2023-f8d216faed)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-f8d216faed advisory. Update to 1.95.1 CVE-2023-43796 ---- Update to v1.95.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...
Fedora 39 : matrix-synapse (2023-4d4c73a8f0)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-4d4c73a8f0 advisory. Update to v1.94.0 CVE-2023-45129 ---- Update to v1.93.0 CVE-2023-41335, CVE-2023-42453 Tenable has extracted the preceding description block directl...
Fedora: Security Advisory (FEDORA-2023-4d4c73a8f0)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.95.0.0) +7 more potentially affected by CVE-2023-43796 via matrix-synapse (>=0.33.9 <=1.95.0)
matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-43796 Source advisory: OSV:GHSA-MP92-3JFM-3575...
matrix-server-isenguard (>=0.1.1 <=0.2.0), matrix-synapse-testutils (>=1.65.0.0 <=1.95.0.0) +7 more potentially affected by CVE-2023-43796 via matrix-synapse (>=0.33.9 <=1.95.0)
matrix-synapse PYPI version =0.33.9, =0.1.1, =1.65.0.0, =0.1.2, =0.100.2, =0.1.0, =0.1.0, =0.8.0, =0.8.4 Source cves: CVE-2023-43796 Source advisory: OSV:PYSEC-2023-230...
Matrix Synapse Information Disclosure Vulnerability
Matrix Synapse is a Matrix Management Server implementation from the Matrix Foundation in the UK. An information disclosure vulnerability exists in Matrix Synapse versions prior to 1.95.1, prior to 1.96.0rc1, which stems from the ability to query a remote user's cached device information from...
Fedora: Security Advisory for matrix-synapse (FEDORA-2023-954c2ec5bd)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...